198.54.114.149 Threat Intelligence and Host Information

Apr 03, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 198.54.114.149 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 42/100

Host and Network Information

Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader
JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762
View other sources: Spamhaus VirusTotal
Contained within other IP sets: hphosts_emd

Country: United States
Network:
Noticed: 1 times
Protocols Attacked: SSH
Passive DNS Results: medsolsupply.com cyrodelima.com resurrectionmugs.com vipcrazy.space wattvalley.com www.nigeosafe.com.ng nigeosafe.com.ng my-cete.online dismaqtecksite.com swrbd.com smartshoperhub.com mohamedvrtx.com peaceofmindpsychiatricservices.com kbuk-ltd.org primehorizonholdings.com zeuscatonsol.com mesolithic.org electroi.com.au ninsharynbebeau.store moralmargin.site vipsms.live codesnippets.codes transport-norrland-ab.com safeofficeorders.com helpfindingyourfunds.com germancarsexpert.com rikmr.com fpmarkets-international.org www.dewlake.ca dewlake.ca hdx.com.hk gunsandcigarettes.com www.article.epl-live-stream-free.pw article.epl-live-stream-free.pw moviemedia.online datinglifejournal.com 1nebody.com veggie-host.online sushinetwork.site mwanzawest.org controlandroidsun.com sealinksupply.com heartficc.com biodz1.com revivotechnology.com www.menangjpsini.site menangjpsini.site kominfosayanglumina16.site lighthousecytech.com ihi-tech.com klippy-net.lol onestopitbd.com quickmedtrans.com mlksvfx.com biorbank.com www.politicsbits.com politicsbits.com ecoshieldng.com www.ecoshieldng.com beingwardag.com nbaibadan.org.ng skanme.app toppingnasi.store banitsibrightkwaku.online valhallaofficial-store.com inkdreamstudio.com softwaredevelopmentforyou.com helixiptv.xyz pickleoneth.com devplaza.org boundlessmusic.live www.boundlessmusic.live abajfitness.com pearson-errandservices.com www.pearson-errandservices.com kinzbellfoundation.org ausunsolar.com gandhistatue.org besharpevents.com cp.conexaowebangola.com www.cp.conexaowebangola.com www.test.kavo-store.com test.kavo-store.com www.kinzbell.com this-guy-delivered-me-food-his-name-is-garegin.xyz koinly.online babyninja.lol lexmat.info tdroyal.com newsilvergrain.com kinzbell.com aliwhite.net www.portal.tdroyal.com portal.tdroyal.com overdosecrypto.com www.overdosecrypto.com manify.store metafinc.org goodwillsquare.com wavemagnets.com abundance247.com bam-iam.com svstrategy.org planetx.tours c2rstore.com reignmediasyndicate.com vkiftrust.com thefutureofdcschoolfunding.com adorisnesthan.com softilex.com estateagencyltd.com llywelyx.art ckorrid.com sellyourpostcards.com net-jskdnfe.com c2rstore.online orientalfood.com postsbychris.com mdesarrollos.com www.fnbfinance.online fnbfinance.online rpharmmw.com techniii.com mbsecurityservices.com ubaatrust.online dubz.online threatlockercustomerservice.net clicks2riches.store digiatalinbox.online bsicgroup.online neonday.gay lonaiptv.com californiahomehealthagency.com iliamsolutions.com confez.guru www.abrantie.com abrantie.com we-makemvp.com adsignaturemarket.com littlefigurine.com www.hellohaw.com hellohaw.com socalhikes.com xtmne.com nnamdiagbakobainspire.com seodiscovery.co mystuffdigital.com associatedpressservice.net www.associatedpressservice.net allwayspeed.com morenews25.com www.news42story.com news42story.com jiaruira.site aiphut.com gladnigeria.com eccotechnicalltd.com fastgladetransitservices.com nanoxledger.cc www.nanoxledger.cc www.lucywastaken.art lucywastaken.art www.metafinax.io metafinax.io lios.education www.lios.education www.select1option.com select1option.com www.dechristiesruby.com courspeed.com kidsstore.korekode.tech www.kidsstore.korekode.tech suggestleads365.site www.getyourupdate.com getyourupdate.com www.poderesoterico.socialsynergy.agency poderesoterico.socialsynergy.agency novelmasters.org www.dinplaninfo.com dinplaninfo.com ganadinerocon.socialsynergy.agency www.ganadinerocon.socialsynergy.agency www.thepoliticalaffairs.com ataursakib.com besharp.events manifysolutions.com www.manifysolutions.com mytemppages.website socialsynergy.agency tricoreinvestment.com rcgrade.com reva-iptv.com www.reva-iptv.com persuasion.socialsynergy.agency www.persuasion.socialsynergy.agency lose6everyweek.com www.drstellaab.com www.test.reeplay.app test.reeplay.app pluzmart.com oceanicfront.com www.blessences.com phuket-t-print.com www.phuket-t-print.com kavo-store.com www.meetings4fun.com meetings4fun.com ordinalsdoodles.art 314group.com.co servonengg.com www.servonengg.com tesoreriagob2023.org aiwriterobot.com carliforniahomehealthagency.com www.betteration.ca betteration.ca onexgame.dev www.onexgame.dev www.pokiesplay.app pokiesplay.app cantocosmos.art www.cantocosmos.art www.thebohemiancaterer.com juizyspa.com www.juizyspa.com envergecomm.net www.envergecomm.net www.liquid-earth.io liquid-earth.io jiajia.com naturescottages.com www.naturescottages.com www.marketnow.store marketnow.store mall.marketnow.store www.mall.marketnow.store brooksdesmonn.xyz michaelneshfall.xyz www.thaisi.io thaisi.io kikisalinaa.xyz www.kikisalinaa.xyz www.4455.wiki 4455.wiki www.ilbegypt.co ilbegypt.co micromail.store www.micromail.store gnawdybeaver.com www.gnawdybeaver.com www.localhealinghouse.com www.tav-regesh.co.il tav-regesh.co.il www.warmupsimply.shop warmupsimply.shop hbsplatform.com www.scubadiveinparadise.com www.brookingsharborlocalnews.com eagleride.app www.eagleride.app www.traveltherapy.fifastores.com traveltherapy.fifastores.com interpretationequipmentsng.com www.korekode.tech y00ts.website wefinanceco.com www.looked.online looked.online dustlabs.art yoots.top angelajensen.digital www.angelajensen.digital www.trihydro.pro trihydro.pro formfactorphone.com www.formfactorphone.com ghanafinancefocusforum.com www.audio.dap.fm audio.dap.fm zen360consult.com www.zen360consult.com www.jordanmlynar.com www.wasfatey.com www.dap.fm dap.fm www.brainlessgenius.com davislab.us www.davislab.us moonseenrose.com www.seodiscovery.co www.gsifactory.com gsifactory.com amazingbulletin.com www.amazingbulletin.com www.fatimaashar.com fatimaashar.com reeplay.app www.reeplay.app www.noel.waves.ng noel.waves.ng pikkoplogistics.com www.pikkoplogistics.com mhlee.website korekode.tech isecurity.host wajibook.com buildbyreeber.com bluxpower.com kestservices.com royalbulkammo.com royalammodepot.com www.royalammodepot.com gangsterallstar.us allyfinanceltd.com www.allyfinanceltd.com www.karitas.productions karitas.productions www.stalliononlineb.com stalliononlineb.com www.neco.com.pk neco.com.pk premium-goods-store.com www.premium-goods-store.com fifastores.com www.pabnatoday.com pabnatoday.com www.times.com.bd times.com.bd popculturecook.com www.popculturecook.com www.snowtrustplc.com snowtrustplc.com www.pioneeronewindows.com pioneeronewindows.com northcarolinastaterp.com shieldrestart.com cad.northcarolinastaterp.com www.cad.northcarolinastaterp.com www.teststore.westcoastroleplay.xyz teststore.westcoastroleplay.xyz teststatus.westcoastroleplay.xyz www.teststatus.westcoastroleplay.xyz gg.espace-tracteurs.com www.gg.espace-tracteurs.com sportarsh.com craiglist.red.al www.craiglist.red.al www.mine.firstchoiceglobalfx.com mine.firstchoiceglobalfx.com www.trade.firstchoiceglobalfx.com trade.firstchoiceglobalfx.com 123-vacuum.shop www.123-vacuum.shop docs.westcoastroleplay.xyz www.docs.westcoastroleplay.xyz www.fse.goldenwaves.com.ng fse.goldenwaves.com.ng www.sahp.westcoastroleplay.xyz sahp.westcoastroleplay.xyz cryptotchain.com www.webadroits.com webadroits.com www.orcoloco.com westcoastroleplay.xyz fasttrackcompanycourier.online carolynhalles.com varikocedermanerte.com statesbusinesslawoffice.com paxcrownbank.com ultrapremiumfxs.com espace-tracteurs.com firstchoiceglobalfx.com viskylaw.com direct-rbboonu.com discord.westcoastroleplay.xyz www.discord.westcoastroleplay.xyz www.staff.westcoastroleplay.xyz staff.westcoastroleplay.xyz www.usser398.xyz usser398.xyz www.ehozi.com ehozi.com dual-electronics.store www.dual-electronics.store www.consultprestm0.buscatucredprest.xyz consultprestm0.buscatucredprest.xyz www.buscatucredprest.xyz buscatucredprest.xyz footballnetworth.com www.footballnetworth.com www.mail.csalogic.com www.downrightbalance.com downrightbalance.com www.horoscope.izzedineeita.com horoscope.izzedineeita.com stories.izzedineeita.com www.stories.izzedineeita.com www.anchorcharters.club www.my5plan.cloud my5plan.cloud belmakina.com www.belmakina.com walletdepot.online adccoltd.com www.designbyulawncare.com designbyulawncare.com tenminutecloud.com www.tenminutecloud.com www.geomapgroup.com grandclovbnk.com mustonconsult.org www.mustonconsult.org 911leather.com www.911leather.com boringarms.com www.boringarms.com roadsec.conexaowebangola.com www.roadsec.conexaowebangola.com www.vacationdept.org vacationdept.org www.bulama.io www.kotdroid.com www.predictiveye.com www.rockncoaching.com rockncoaching.com brandfocusafrica.com interlybnk.com ma.pat-app-carre.site www.ma.pat-app-carre.site pat-app-carre.site www.pat-app-carre.site radcommbusiness.com www.globalelitelogisticscs.live www.durablegenius.com durablegenius.com www.sidespin.vc sidespin.vc www.merch.sweataddicts.gg merch.sweataddicts.gg www.fidelityfx.net gatesrepairla.lincsdiagnostics.com www.gatesrepairla.lincsdiagnostics.com chamundaltd.com www.chamundaltd.com mombeing.com www.mombeing.com www.uaminifusacco.com uaminifusacco.com staranimalstransport.com votes.zeossystems.com www.votes.zeossystems.com kysstore.com m.progressiveinnovations.com trust-ally.com www.ericandjoshua.com www.duereports.com duereports.com www.conexaowebangola.com www.atbestessays.com www.biglittle.ai www.unicornmedia.agency unicornmedia.agency www.sidespingroup.com www.michaelrgilbert.com www.asuza.buyer-aid.com asuza.buyer-aid.com www.jovian12.net ufbonline.com healthyhappychristmas.com thewhiteone.org www.thewhiteone.net thewhiteone.net www.interiordesignjjh.com interiordesignjjh.com crambolina.com cope.dechristiesruby.com www.buyer-aid.com buyer-aid.com hermes.red.al www.hermes.red.al www.rambling.cc rambling.cc dcrtcafrica.com www.dcrtcafrica.com msont.co.uk www.msont.co.uk stg.vivizubedi.com www.stg.vivizubedi.com czarmpire.xyz www.czarmpire.xyz klubkitchen.com www.klubkitchen.com goaglobalsolutions.com www.blockchainpaymentdesk.com blockchainpaymentdesk.com www.marketing.dongabstechnologies.com marketing.dongabstechnologies.com procurement.dongabstechnologies.com www.procurement.dongabstechnologies.com www.dev.goaglobalsolutions.com

Malware Detected on Host

Count: 5 1461e8e6318592f161ef6ac1a0031e436e2cbff82038c0cb19bffdcaf3aa6668 2b190afb107394d2cb7432dfd30df412d3ca430f84a53cf6507b8ae0881e23bc c7be57ca2458b6ad573faf8bdc33939c1f6cfcaf720c94f1ef70dc0ea6488b3d e74b6e5a204495bd9b86d288d10520d4f99975ea2400d04bd176edadb22d655d 3cc2da758ccb333e94a9272d83a5a7cdafd24e6c89b270af81ec84f621f7f8d7

Open Ports Detected

110 143 2082 2083 21 443 465 53 587 80 993 995

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2024-6484

Map

Whois Information

NetRange: 198.54.112.0 - 198.54.127.255
CIDR: 198.54.112.0/20
NetName: NAMEC-4
NetHandle: NET-198-54-112-0-1
Parent: NET198 (NET-198-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Namecheap, Inc. (NAMEC-4)
RegDate: 2015-11-13
Updated: 2015-11-13
Ref: https://rdap.arin.net/registry/ip/198.54.112.0
OrgName: Namecheap, Inc.
OrgId: NAMEC-4
Address: 11400 W. Olympic Blvd. Suite 200
City: Los Angeles
StateProv: CA
PostalCode: 90064
Country: US
RegDate: 2011-01-28
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/NAMEC-4
OrgTechHandle: TECHT4-ARIN
OrgTechName: Tech team
OrgTechPhone: +1-323-375-2822
OrgTechEmail: tech@namecheaphosting.com
OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
OrgAbuseHandle: ABUSE2885-ARIN
OrgAbuseName: Abuse team
OrgAbusePhone: +1-323-375-2822
OrgAbuseEmail: abuse@namecheaphosting.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
OrgTechHandle: EFIME-ARIN
OrgTechName: Efimenko, Igor
OrgTechPhone: +1-323-375-2822
OrgTechEmail: igor.e@namecheap.com
OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
network:Class-Name:network
network:Auth-Area:198.54.114.128/26
network:ID:NET-30822.198.54.114.149
network:IP-Network:198.54.114.149
network:IP-Network-Block:198.54.114.149
network:Org-Name:Web-hosting.com
network:Street-Address:3402 East University Drive
network:City:Phoenix
network:State:AZ
network:Postal-Code:85034
network:Country-Code:US
network:Tech-Contact:MAINT-30822.198.54.114.149
network:Created:20160411141906000
network:Updated:20160418031756000
network:Updated-By:net-admin@namecheap.com
contact:POC-Name:Network team
contact:POC-Email:net-admin@namecheap.com
contact:POC-Phone:
contact:Tech-Name:Network team
contact:Tech-Email:net-admin@namecheap.com
contact:Tech-Phone:
contact:Abuse-Name:Abuse team
contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: